Route Origin Authorization

$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a643230303a3a2f34302d3438203d3e20323131393436.roa
File:                     326131323a646434373a643230303a3a2f34302d3438203d3e20323131393436.roa (raw, json)
Hash identifier:          ZX8/9lFBb3KJL+5M7/j2T9NFQ1tFLcDsu6sliJlxK2Q=
Subject key identifier:   B7:B4:AA:C5:5F:78:59:DE:52:10:3F:F9:63:36:F5:B6:40:D1:AD:26
Certificate issuer:       /CN=765B8B37E5536BE49A0BF3D60EF667B6F4C850C1
Certificate serial:       688E32212A7183C0A6307200CBA2FB42FAD2EF8C
Authority key identifier: 76:5B:8B:37:E5:53:6B:E4:9A:0B:F3:D6:0E:F6:67:B6:F4:C8:50:C1
Authority info access:    rsync://dev.tw/rpki/August/5/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.cer
Subject info access:      rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a643230303a3a2f34302d3438203d3e20323131393436.roa
Signing time:             Thu 20 Jun 2024 05:23:26 +0000
ROA not before:           Thu 20 Jun 2024 05:18:26 +0000
ROA not after:            Thu 19 Jun 2025 05:23:26 +0000
asID:                     211946
IP address blocks:        2a12:dd47:d200::/40 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            68:8e:32:21:2a:71:83:c0:a6:30:72:00:cb:a2:fb:42:fa:d2:ef:8c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=765B8B37E5536BE49A0BF3D60EF667B6F4C850C1
        Validity
            Not Before: Jun 20 05:18:26 2024 GMT
            Not After : Jun 19 05:23:26 2025 GMT
        Subject: CN=B7B4AAC55F7859DE52103FF96336F5B640D1AD26
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:9e:e0:86:4f:7b:94:25:87:3d:ca:b4:92:af:
                    67:ca:90:10:a5:b2:85:95:82:d0:56:e6:1b:46:7f:
                    05:23:7c:7f:fa:67:0b:5f:22:6e:3d:5e:41:a7:29:
                    ea:8a:dd:98:d4:30:1f:e3:52:f3:13:6d:99:69:01:
                    3e:04:fb:75:77:0c:6b:d7:be:9a:82:3d:5f:bc:e6:
                    a8:ec:6c:93:10:36:73:06:97:3e:64:dd:e8:94:86:
                    48:75:e0:76:5d:ac:b0:d9:aa:e5:de:83:49:13:dd:
                    12:1c:6f:ff:ee:4b:24:a1:ce:d2:a8:3a:1c:54:12:
                    10:e2:18:c4:e8:8d:d7:28:15:79:e9:80:4c:a0:cf:
                    cf:20:7e:44:0d:b9:c8:c6:43:7e:ce:5e:22:1d:aa:
                    65:10:40:f7:68:fc:60:93:ed:ef:a1:58:d1:ff:9b:
                    3d:30:fb:6a:a3:12:0f:8b:67:86:a7:8e:d5:bc:9f:
                    38:ce:42:5a:d9:d1:4b:b2:7d:4a:71:4c:c4:dc:5a:
                    d2:77:fd:28:ce:e5:09:d4:c7:5a:7e:da:3a:37:27:
                    0c:02:67:40:c0:1b:92:41:89:16:f9:40:3d:b2:fd:
                    78:be:fa:ce:1e:6f:82:c7:6e:ea:7e:65:de:c4:be:
                    ce:e9:ae:e6:d8:79:ea:d4:bc:84:58:28:84:39:cb:
                    e2:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B7:B4:AA:C5:5F:78:59:DE:52:10:3F:F9:63:36:F5:B6:40:D1:AD:26
            X509v3 Authority Key Identifier:
                keyid:76:5B:8B:37:E5:53:6B:E4:9A:0B:F3:D6:0E:F6:67:B6:F4:C8:50:C1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://dev.tw/rpki/August/5/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a643230303a3a2f34302d3438203d3e20323131393436.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a12:dd47:d200::/40

    Signature Algorithm: sha256WithRSAEncryption
         23:89:44:72:47:0a:f1:b2:11:70:17:df:63:c6:11:8c:88:a4:
         d2:f0:a8:a8:ec:f4:ab:d4:e9:71:7e:9e:fd:7b:03:30:e0:55:
         b3:08:84:7c:4e:1d:4c:ee:02:6d:36:7b:c1:fe:2c:86:9b:ce:
         d1:d4:2b:91:b3:1b:2b:98:db:b9:be:dd:51:2d:e6:6f:78:31:
         3a:27:b7:13:d0:a1:df:c1:41:46:63:1d:8b:3e:79:61:8b:4a:
         03:bd:54:ec:1e:ab:f6:41:ee:e1:d6:2b:8f:99:c5:6b:58:37:
         a3:85:ca:13:d1:18:7c:ab:52:3b:d7:13:c6:48:9b:32:17:39:
         c8:26:85:36:be:d2:c8:78:fa:01:b4:fe:d8:e3:1f:fc:f3:74:
         ba:bf:11:74:7a:08:35:ac:6b:95:f5:8a:8e:68:87:32:be:70:
         e2:18:3a:96:62:59:0b:80:35:44:9f:7e:ce:73:7d:88:4d:5e:
         0d:e5:74:a4:60:35:c5:3b:1f:2b:18:bb:c0:98:a9:97:75:00:
         bf:5f:b8:77:37:59:c5:fb:12:18:f5:15:87:ca:65:e7:f4:cf:
         73:b2:1f:a5:7e:85:0d:38:b7:31:43:86:ff:2c:d1:25:8c:55:
         eb:c2:16:96:29:c0:f3:e3:93:ab:22:e2:5d:6e:80:8e:60:71:
         e5:b8:49:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 11 13:55:30 2024 by rpki-client on console-fra.rpki-client.org